CVE-2002-0948

Name of the Vulnerable Software and Affected Versions: Scripts For Educators MakeBook version 2.2

Description: The issue allows remote attackers to execute scripts as other visitors or execute server-side includes (SSI) as the web server. This is possible due to the Name and Email parameters not being properly filtered, which can be exploited to gain unauthorized access.

Recommendations: For version 2.2, consider filtering the Name and Email parameters to prevent unauthorized script execution. As a temporary workaround, restrict access to sensitive server-side includes to minimize the risk of exploitation.